[ https://issues.apache.org/jira/browse/WSS-406?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Colm O hEigeartaigh resolved WSS-406. ------------------------------------- Resolution: Fixed > Add the ability to define which algorithms are acceptable when processing a > security header > ------------------------------------------------------------------------------------------- > > Key: WSS-406 > URL: https://issues.apache.org/jira/browse/WSS-406 > Project: WSS4J > Issue Type: Improvement > Affects Versions: 1.6.7 > Reporter: Colm O hEigeartaigh > Assignee: Colm O hEigeartaigh > Fix For: 1.6.8 > > > This task is to add the ability to define which algorithms are acceptable > when processing a security header. In WS-SecurityPolicy, you can define an > "AlgorithmSuite" (e.g. sp:Basic128) which describes which algorithms must be > used. Currently there is no way to enforce this in WSS4J. > An AlgorithmSuite class will be added to WSS4J, which a third party library > can populate. This will hold acceptable values for things like signature > method, digest, c14n algorithms etc., as well as key sizes, and encryption > symmetric and key wrapping algorithms etc. If WSS4J encounters an Element > that does not match one of these values then an exception is thrown. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@ws.apache.org For additional commands, e-mail: dev-h...@ws.apache.org